Hi, some API providers (e.g. for a database), allow you to configure a filter on their side to only accept traffic from certain IP address blocks.
Is there a reasonable way to restrict the set of IPs my k8s cluster uses when sending traffic outside of the cluster such that I could configure this list?
I’m aware this is support for reserved IPs, but not clear how integrated it is with k8s (https://docs.digitalocean.com/products/networking/reserved-ips/how-to/outbound-traffic/).
Or if not, possibly the DigitalOcean-wide set of IP addresses that may be used, thus limiting attacks to running on DigitalOcean?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.